JOB SUMMARY

CyberStorm Defense™ is seeking Senior Cybersecurity Engineers to join our elite team defending critical federal systems at the IRS, DoD, and DHS. This role is for experts who live and breathe cyber defense — engineers with the technical range to harden networks, secure cloud environments, and lead incident response in compliance-heavy settings.
You will design end-to-end security solutions, build and maintain ATO packages, and leverage cutting-edge tools to hunt and neutralize threats. This position requires both deep technical knowledge and the ability to operate in high-stakes federal environments where compliance, precision, and speed matter.

REQUIRED EXPERIENCE & SKILLS

• Bachelor’s degree in Computer Science, Cybersecurity, or related field (Master’s preferred).
• 7–10+ years of progressive experience in cybersecurity engineering roles.
• Proven experience supporting federal compliance environments (IRS, DoD, DHS, FedRAMP).
• Proficiency in networking (TCP/IP, OSPF, EIGRP, VPN, TLS, IPsec) and system hardening (Linux, Windows, VMware).
• Strong background in scripting and automation with Python, Bash, PowerShell.
• Hands-on experience with cloud infrastructure security (IaaS, PaaS, SaaS).
• Deep knowledge of incident detection and adversarial techniques mapped to MITRE ATT&CK.

• Architect and implement security solutions across LAN, WAN, and hybrid cloud environments, aligned with NIST 800-53/171, CMMC, FedRAMP, PCI, and ISO 27001.
• Configure and manage next-generation firewalls and security appliances: Cisco ASA, Palo Alto, Fortinet, Cisco ISE, F5 WAF.
• Conduct vulnerability management and penetration testing using tools such as Burp Suite, Nessus, Tenable.io, Qualys, Metasploit, Splunk, ELK Stack, and Wireshark.
• Develop and maintain System Security Plans (SSPs), POA&Ms, and Risk Registers for ATO/A&A packages.
• Lead incident response efforts including threat hunting, malware analysis, adversarial simulation, and digital forensics.
• Secure cloud environments (AWS GovCloud, Azure Government, GCP) with Zero Trust architectures, container security (Docker/Kubernetes), and DevSecOps CI/CD pipelines.
• Deploy and manage Identity & Access Management (IAM) solutions including LDAP, Active Directory, SSO, MFA.
• Perform real-time log analysis with SIEM/SOAR platforms (Splunk, Sentinel, QRadar, Elastic).
• Mentor junior analysts/engineers, provide technical guidance, and enforce secure coding practices with development teams.
• Stay ahead of evolving threats by conducting threat intelligence analysis and integrating emerging security solutions.